CVE-2025-62190 CSRF Allows Call Initiation and Message Delivery

Mattermost versions 11.0.x = 11.0.4, 10.12.x = 10.12.2, 10.11.x = 10.11.6 and Mattermost Calls versions =1.10.0 fail to implement CSRF protection on the Calls widget page which allows an authenticated attacker to initiate calls and inject messages into channels or direct messages via a malicious...

EUVD-2025-203892

Mattermost versions 11.0.x = 11.0.4, 10.12.x = 10.12.2, 10.11.x = 10.11.6 and Mattermost Calls versions =1.10.0 fail to implement CSRF protection on the Calls widget page which allows an authenticated attacker to initiate calls and inject messages into channels or direct messages via a malicious...

EUVD-2016-5587

Malware in sbrugna...

CVE-2024-0901 affecting package mariadb for versions less than 10.11.6-3

CVE-2024-0901 affecting package mariadb for versions less than 10.11.6-3. A patched version of the package is available...

USN-6600-1 mariadb, mariadb-10.3, mariadb-10.6 vulnerabilities

Several security issues were discovered in MariaDB and this update includes new upstream MariaDB versions to fix these issues. MariaDB has been updated to 10.3.39 in Ubuntu 20.04 LTS, 10.6.16 in Ubuntu 22.04 LTS and 10.11.6 in Ubuntu 23.10. CVE-2022-47015 only affected the MariaDB packages in...

MariaDB DoS Vulnerability (CVE-2023-22084) - Windows

MariaDB is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mariadb:mariadb"; if...

CVE-2017-13911

A configuration issue was addressed with additional restrictions. This issue affected versions prior to macOS X El Capitan 10.11.6 Security Update 2018-002, macOS Sierra 10.12.6 Security Update 2018-002, macOS High Sierra 10.13.2...

Apple Mac OS X Security Updates (HT208849)-02

Apple Mac OS X is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Multiple CPU Hardware CVE-2017-5753 Information Disclosure Vulnerability

Description Multiple CPU Hardware are prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in further attacks. Technologies Affected AMD FXtm-8320 Eight-Core Processor AMD PRO A8-9600 R7, 10 COMPUTE CORES 4C+6G ARM Cortex...

Firefox an integer overflow leading to the mmap region is out of bounds write use-vulnerability warning-the black bar safety net

This article will explore a very interesting Vulnerability---CVE-2016-9066, a very simple but very interesting could lead to code execution Firefox vulnerability. The code in the presence of an integer overflow vulnerability, leading to loading of mmap area bounds. There is an advantage of this...

Mac OS X Multiple Vulnerabilities (Security Updates 2016-003 / 2016-007)

The remote host is running a version of Mac OS X 10.10.5 or 10.11.6 that is missing a security update. It is therefore, affected by multiple vulnerabilities : - A denial of service vulnerability exists in the sslparseclienthellotlsext function within file ssl/t1lib.c when handling oversize OCSP...

Apple Mac OS X Multiple Vulnerabilities (Dec 2016)

Apple Mac OS X is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Address Sanitizer in macOS-vulnerability warning-the black bar safety net

A few days ago, the Keen Team@marcograss on their blog released a using Address Sanitizeraka asan found a heap overflow vulnerability. Discuss here about asan implementation. This article relates to the environment macOS 10.11.6 Xcode 7.3.1 make sure to use the official Apple's clang, with the op...

Mac OS X 10.11.x < 10.11.6 Multiple Vulnerabilities

Binary data 9441.prm...

Apple OS X Safari Login AutoFill Information Disclosure Vulnerability

Apple OS X is a specialized operating system developed by Apple for Mac computers.Safari Login AutoFill is one of the Safari Login AutoFill components. An information disclosure vulnerability exists in Safari Login AutoFill in Apple OS X versions prior to 10.11.6. An attacker could exploit this...

Apple OS X Audio Denial of Service Vulnerability (CNVD-2016-05591)

Apple OS X is a specialized operating system developed by Apple for Mac computers.Audio is one of the audio components. A security vulnerability exists in Audio in Apple OS X versions prior to 10.11.6. A local attacker could exploit this vulnerability to cause a denial of service null pointer...

CVE-2016-4648

Audio in Apple OS X before 10.11.6 allows local users to obtain sensitive kernel memory-layout information or cause a denial of service out-of-bounds read via unspecified vectors...

CVE-2014-9862

Integer signedness error in bspatch.c in bspatch in bsdiff, as used in Apple OS X before 10.11.6 and other products, allows remote attackers to execute arbitrary code or cause a denial of service heap-based buffer overflow via a crafted patch file...

Memory corruption

QuickTime in Apple OS X before 10.11.6 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted Photoshop document...

CVE-2016-4625

CVE-2016-4625 is a local privilege escalation in Apple macOS OS X El Capitan involving IOSurface. A use-after-free in IOSurface leads to kernel- or system-level code execution with local access prior to patch. Affected: OS X El Capitan v10.11 (and related 10.11.x builds) before 10.11.6; patch sup...